Mediatricks Viva Thumbs Plugin for WordPress - Multiple Information Disclosure Vulnerabilities

ID: 56369
CVE: None
Download vulnerable application: None

The Mediatricks Viva Thumbs plugin for WordPress is prone to multiple information-disclosure vulnerabilities because it fails to properly sanitize user-supplied input.

Attackers can exploit these issues using directory-traversal strings to confirm the existence of local files outside of the WordPress webroot. Information obtained can aid in launching further attacks.
1-4-2 (www02)